(19) 



J 



Europaisches Patentamt 
European Patent Office 
Office europeen des brevets 



IDS Cite No. FP2 
ForAppl.No. 09/610,798 



EP 1 132 800 A2 



(12) 



EUROPEAN PATENT APPLICATION 



(43) 


Date of publication: 


(51) int ci 7; G06F1/00 




12.09.2001 Bulletin 2001/37 


(21) 


Application number 01105341.0 




(22) 


Date of filing: 07.03.2001 




(84) 


Designated Contracting States: 


(72) Inventors: 




AT BE CH CY DE DK ES Fl FR GB GR IE IT LI LU 


• Daspft, Ignatius Das pit 




MC NL PTSETR 


Rancho Palos Verdes, California 90275 (US) 




Designated Extension States: 


• Furusawa, Michael Masaji 




AL LT LV MK RO SI 


Chino Hills, California 91709 (US) 






♦ Nguyen, Chieu The 


(30) 


Priority: 08.03.2000 US 520589 


Irvine, California 92620 (US) 


(71) 


Applicant: Rainbow Technologies Inc. 


(74) Representative: Grttnecker, Kinkeldey, 




Irvine, California 9271 8 (US) 


Stockmair & Schwanhausser Anwartssozietat 






Maximilianstrasse 58 






80538 Mtinchen (DE) 



(54) Non-wire contact device application for cryptographic module interfaces 



(57) Conventional approaches to cryptographic 
modules interface design have achieved only limited 
physical security. Embodiments of the present invention 
encompass non-contact interfaces to cryptographic 
modules. Non-contact inputs comprise such inputs as 
contain magnetic coupling, RF coupling, infrared cou- 
pling, optical coupling and acoustical coupling to load 
cryptographic data into cryptographic modules. By us- 
ing non-contact methods of coupling, the physical inputs 
to the module can be hidden as no external connectors 
to input cryptographic data are required. In addition, 
several non-contact inputs can be disposed within a 
cryptographic module. These non-contact inputs may 



have orientations and spacings, which require the spe- 
cific placement of transmitting units, thereby increasing 
the security of the module. In addition, by having several 
inputs to the cryptographic module, instead of merely 
one, the cryptographic function may be made to be de- 
pendent on a sequencing of data between the inputs. In 
other words, the cryptographic module may require si- 
multaneous inputs on two or more sensors. Crypto- 
graphic module may also require a sequence of data 
inputs. By hiding cryptographic inputs through non-con- 
tact means, requiring various non-contact input orienta- 
tions and data sequencing and by using different sen- 
sors, security within cryptographic modules can be 
greatly enhanced. 
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Description 

BACKGROUND OF THE INVENTION 

1 . Field of the Invention 

[0001] The present invention relates, generally, to 
electronic cryptographic module interfaces, and more 
particularly to cryptographic module interfaces, which 
enhance security through the use of non-physicalcon- 
tact interfaces. 

2. Description of Related Art 

[0002] Transactions involving electronic systems are 
becoming increasingly more commonplace. Transac- 
tions involving money transfers, automated teller ma- 
chines, and purchases over the Internet and all manner 
of data processing are becoming pervasive and com- 
monplace. Because the volume of electronic transac- 
tions of every type are ever increasing, there is more 
opportunity for fraud and unauthorized transfers to oc- 
cur, and so it has become increasingly important to pro- 
tect electronic systems from unauthorized access. A 
popular method of preventing unauthorized access of 
data processing systems is to employ the use of cryp- 
tographic modules. Cryptographic modules are elec- 
tronic subsystems that provide cryptographic services 
for data processing applications. These services in- 
clude, but are not limited to, encryption, decryption, au- 
thentication, certificate storage, cash value storage, and 
access control operations. Cryptographic modules are 
commonly either embedded in a host system or inter- 
faced externally to a host system. The host system be- 
ing the system that controls and/or passes data to or 
from the cryptographic module. The host system may 
be a desktop computer, portable computer, server, or 
any other processing equipment. 
[0003] There are several different forms of crypto- 
graphic modules of differing size, power, and weight. All 
forms of cryptographic modules perform cryptographic 
services, but may differ markedly in their physical hard- 
ware appearances and in the applications in which they 
are present. 

[0004] One type of cryptographic module is some- 
times referred to as a cryptographic token . Cryptograph- 
ic tokens comprise cryptographic security devices, 
which provide client services for host applications. Cryp- 
tographic tokens are commonly personal devices that 
are carried by their owner. When required, connecting 
the token to a host system accesses the token's servic- 
es. Examples of tokens include Smart Cards, PC Card 
tokens (such as those using PCMCIA and CardBus), 
and USB tokens. Cryptographic tokens commonly plug 
into connections on the host system and can be freely 
installed or removed from the host system, but may also 
be coupled to a host system by non contact methods 
such as radio frequency (RF) coupling. 



[0005] Another type of cryptographic module is the 
cryptographic plug-in circuit card. Cryptographic plug-in 
cards are installed into a host system and provide cryp- 
tographic services for the host system. Cryptographic 
plug-in cards commonly interface to the host system on 
its local (Internal) interface bus and are normally in- 
stalled in the host system where the host interface is not 
externally accessible. Examples of cryptographic plug- 
in cards include ISA interface bus cards and PCI inter- 
face bus plug-in cards. Cryptographic plug-in cards may 
contain other peripheral interface functions such as Eth- 
ernet, SCSI, ADSL, RS-232, fire-wire, and others. Plug- 
in cards, generally, are intended to remain in the system 
over its life cycle and often require some disassembly 
of the host system to replace it. 
[0006] Yet another type of cryptographic module is the 
stand-alone cryptographic module. Stand-alone crypto- 
graphic modules are commonly externally connected to 
the host system. Examples of stand-alone cryptograph- 
ic modules include peripheral communications devices 
such as analog modems, digital modems, ADSL, Ether- 
net, fire-wire, external storage devices, RS-232, satel- 
lite terminals, and other forms of cryptographic security 
equipment. 

[0007] Still another type of cryptographic module is 
the embeddable cryptographic module. Embeddable 
cryptographic modules are commonly assemblies and/ 
or microcircuits that are integrated directly into a host 
system by incorporating them on a printed wiring board 
(PWB) or by connecting the cryptographic module to a 
PWB or processor in the host system. Embeddable 
modules are usually not accessible from the outside of 
the host system and often require disassembly of the 
host system to replace the embeddable module. 
[0008] Cryptographic modules have at least one in- 
terface to their host system. This interface may transfer 
encrypted and decrypted data, configuration/initializa- 
tion information, application software, cryptographic 
software and keys, control and status information as 
well as other information. 

[0009] For security purposes, many cryptographic 
systems provide a separate data interface for the trans- 
fer of cryptographic information into the cryptographic 
module. This type of interface may be referred to as a 
Cryptographic Load Interface (CFI). The CFI is primarily 
used to transfer cryptographic information (such as pri- 
vate keys, certificates, and cryptographic software) se- 
curely into a cryptographic module, but can be used to 
transfer any type of information (such as application 
software updates) into the cryptographic module. Com- 
monly CFI interfaces are receive only and do not output 
any data. The cryptographic load interface can be a va- 
riety of different types of transmitting units, for example 
radio, optical and magnetic, which are suitable to trans- 
mit cryptographic data. 

[0010] One problem exhibited by conventional cryp- 
tographic interface implementations is that of physical 
concealment. Conventional electrical designs often re- 
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quire a metallic, hardware connector (pins or recepta- 
cles) for a host interface and/or CFI. Such connectors 
may be visfole from the outside of the cryptographic 
module and can reveal a possible physical entry point 
into the cryptographic boundary of the host system, 
which can expose an avenue for extracting and compro- 
mising private information within the module. Efforts 
have been made to reduce the accessibility of the con- 
nector through conventional means, such as compart- 
ment doors or covers. Such concealment efforts how- 
ever only reduce the visibility of the data port but fail to 
completely conceal it. 

[0011] A second problem exhibited by conventional 
cryptographic interface Implementations is that of sus- 
ceptibility to cryptographic monitoring by electronic 
eavesdropping means. Conventional Input/Output (I/O) 
ports have physical pins that can be monitored for con- 
ductive and/or electromagnetic radiation thereby giving 
rise to the possibility of monitoring and deciphering crit- 
ical information. The susceptibility of an interface to data 
monitoring depends on several factors related to the 
physical and mechanical implementation of the inter- 
face such as, connector, and cable shielding. Further- 
more, it may be possible to induce a stimulus at an I/O 
interface and cause an internal failure within the module. 
An internal failure within the module may cause a denial 
of cryptographic services and can be as problematic as 
the unauthorized extraction of information. There is also 
a possibility that the module, through error, internal fail- 
ure or otherwise may inadvertently output protected in- 
formation. 

[0012] A third problem exhibited by conventional cryp- 
tographic interface implementations is that of suscepti- 
bility to interference. Conventional I/O ports can be sus- 
ceptible to electromagnetic interference (EMI) or direct 
voltage induced into its connector and/or cabling. This 
may affect the modules' performance and may even de- 
feat its security measures. 

[0013] A fourth problem exhibited by conventional 
cryptographic interface implementations is that of sus- 
ceptibility to the environment. Conventional I/O ports 
can be sensitive to extreme environmental conditions 
such as high temperature, radiation, and humidity that 
may damage or render the module's interface inopera- 
ble. 

[0014] A fifth problem exhibited by conventional cryp- 
tographic interface implementations is that of crypto- 
graphic manufacturing requirements. Cryptographic se- 
curity specifications may require complete physical 
tamper protection to be built around the module. The 
physical connectors often requires special designs that 
complicate and increase the cost of the installation and/ 
or manufacturing of these tamper countermeasures. 
[0015] A sixth problem exhibited by conventional 
cryptographic interface implementations is that of cryp- 
tographic field maintenance requirements. Crypto- 
graphic modules can require periodic maintenance 
based on their host system's security policy. At the end 



of a cryptographic period (which can range from days to 
years), the cryptographic module may need to be 
rekeyed to support further use. If a CFI is implemented, 
it may need to be accessible to load cryptographic pa- 

5 rameters into the cryptographic module. If it is not ac- 
cessible, then the host system may have to be disas- 
sembled to get to the CFI. Commonly, the cryptographic 
module is simply removed from the host and replaced. 
This replacement process can be inconvenient and can 

10 increase the overall life cycle costs of the system. 

Summary of the Disclosure 

[001 6] To overcome the limitations in the prior art de- 

15 scribed above, and to overcome other limitations that 
will become apparent upon reading and understanding 
the present specification, the present invention relates, 
generally, to a non-wire contact cryptographic interface. 
[0017] The present invention solves the above-de- 

20 scribed problems by providing an innovative and secure 
means for concealing a Cryptographic Load Interface 
(CFI) port, function and for preventing tampering with 
cryptographic parameters. A system in accordance with 
the principles of preferred embodiments of the present 

25 invention includes a one-way, wireless, receiver func- 
tion based on magnetic, inductive, acoustic, radio fre- 
quency (RF), optical, or infrared technologies. 
[0018] Other embodiments of a system, in accord- 
ance with the principles of the invention, may include 

30 alternative or optional additional aspects. One such as- 
pect of the present invention is a one-way secure access 
protocol for protecting and authenticating incoming 
cryptographic data. 

[001 9] Other aspects of the invention include the use 

35 of a plurality of non-contact input Cryptographic Load 
Interface (CFI) ports. Such ports may comprise a multi- 
tude of similar type inputs, such as radio frequency sen- 
sors, or the CFI ports may comprise a combination of 
different types of inputs such as an acoustic sensor and 

40 a radio frequency sensor. The plurality of sensors may 
be used concurrently or in a predetermined orderto pro- 
vide a further secure Cryptographic Load Interface. 
[0020] Other embodiments may encompass various 
other aspects of the present invention. For example, the 

^5 Cryptographic Load Interface may be programmed to 
accept data packets of information containing various 
encryption parameters. The encryption parameters may 
pertain to only the data packet in which they are encod- 
ed or they may pertain to a sequence of data packets. 

so The data packets may contain such encryption informa- 
tion as which type of encryption file is to be used with 
the incoming data or a digital signature that could be 
compared with a digital signature file within the crypto- 
graphic module. The data packets might also contain 

55 cryptographic parameters such as private keys and dig- 
ital signatures. 

[0021] These and various other advantages and fea- 
tures of novelty, which characterize the invention, are 
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pointed out with particularity in the claims annexed here- 
to and form a part hereof. However, for a better under- 
standing of preferred embodiments of the invention, its 
advantages, and the advantages obtained by their use, 
reference should be made to the drawings, which form 
a further part hereof, and to accompanying descriptive 
matter. The drawings and accompanying descriptive 
matter illustrate and describe specific examples of ap- 
paratuses with aspects in accordance with the present 
invention. 

[0022] These and other features, objects, and advan- 
tages of embodiments of the invention will be apparent 
to those skilled in the art from the following detailed de- 
scription of embodiments of the invention, when read 
with the drawings and appended claims. 

Brief Description of the Drawings 

[0023] FIG. 1 is a graphic illustration of a an example 

environment in which a cryptographic token, such as an 

identification card, may be used. 

[0024] FIG. 2 is a graphic illustration of a computer 

system containing a cryptographic module. 

[0025] FIG. 3 is a graphical example of a non-contact 

identification token. 

[0026] FIG. 4 is a block diagram of a non-wire contact 
cryptographic load interface (CFI). 
[0027] FIG. 5 is a block diagram of a cryptography 
module, which may be used with a cryptographic load 
interface (CFI). 

[0028] FIG. 6 is a block diagram of a cryptography 
module containing both a CFI interface and a Cryptog- 
raphy Load Protocol (CLP) within a block diagram illus- 
trating a completely enclosed and concealed crypto- 
load interface.. 

[0029] FIG. 7 is a graphic illustration of an enhanced 
security cryptographic module containing two non-con- 
tact CFI inputs. 

[0030] FIG. 8 is a graphic illustration of a cryptograph- 
ic module having a non-contact CFI input as well as a 
"secret" session parameter. 

[0031] FIG. 9 is a graphic example of non-wire contact 
cryptographic module and system according to an em- 
bodiment of the invention, which employs a data packet, 
Input scheme. 

[0032] FIG. 10 is a table illustrating an example em- 
bodiment of a data packetization protocol as may be 
used with embodiments of the invention such as that il- 
lustrated in Figure 9. 

[0033] FIG. 1 1 is a graphical illustration of the use of 
specific an embodiment of the invention in which orien- 
tation and shielding of sensors are use to heighten se- 
curity. 

Detailed Description of Preferred Embodiments 

[0034] In the following description of preferred em- 
bodiments, reference is made to the accompanying 



drawings which form a part hereof, and in which is 
shown, by way of illustration, specific embodiments in 
which the invention may be practiced. It is to be under- 
stood that other embodiments may be utilized and struc- 
5 tural changes may be made without departing from the 
spirit and scope of the present Invention. 
[0035] Fig. 1 is a graphic illustration of an example 
system environment where a cryptographic token, such 
as an identification card, is used. Fig. 1 is a graphic de- 
10 piction of the common ATM or automated teller ma- 
chine. The automated teller machine 101 comprises a 
display 103 for displaying user prompts and customer 
messages, a keypad 1 05 and a slot for an identification 
card 109. An identification card 107 is inserted into the 
15 slot 1 09 . A user then observes the display 1 03 entering 
a PIN (Personal Identification Number) on the keypad 
1 05 in order to access the user's account. If the crypto- 
graphic data within the identification card and the key- 
pad are suitable then the user can communicate with 
the bank computer 113 over an electronics communica- 
tion line such as a telephone line or dedicated transmis- 
sion line 111. 

[0036] The ATM machine has become increasingly 
popular over the recent years. The ATM machine has 
severalsecurity weaknesses within its architecture. One 
weakness is that the identification card 1 07 that the user 
uses to identify himself can be lost or stolen and the user 
PIN number can also be misappropriated, such as by 
observing an authorized user entering the number on 
the keypad 1 05. In addition, the data link between the 
automated teller machine 101 and the bank computer 
113 (i.e., 111) is subject to electronic eavesdropping. 
[0037] If the electronic link 1 1 1 between the ATM ma- 
chine and the bank computer is subjected to electronic 
eavesdropping measures, the data which is used to ac- 
cess a customer's account within the bank computer 1 1 3 
may be intercepted. The data, which is used to access 
the customer's account, may used to withdraw money 
from the account without the customer's knowledge or 
authorization. 

[0038] Fig. 2 is a graphic illustration of a computer 
system containing a cryptographic module. In Fig. 2 a 
remote terminal 201 communicates via a link 203 with 
a computer system 209. Both data and cryptographic 
data flow across the link 203 into the connector 207 and 
are further coupled to a cryptographic module 21 1 . The 
output of the cryptographic module 211 is coupled into 
a Central Processing Unit (CPU) 213 within the compu- 
ter system 209. The cryptographic module 211 can be 
used to prevent unauthorized access through the com- 
puter system by inhibiting the passage of (or otherwise 
screening out) communications that do not contain the 
appropriate cryptographic data. In order to access the 
computer system 209, the remote terminal 201 must first 
communicate the proper cryptographic data across the 
link 203 to the computer system 209 in order to activate 
the cryptographic module 211. Although the computer 
system 209 cannot be accessed without the proper 
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cryptographic data the system illustrated in Fig. 2 is still 
subject to unauthorized access by, for example, observ- 
ing the data in the link 203 or by injecting signals into 
the computer system through the connector 207. The 
connector 207 provides an obvious entry into the com- s 
puter system 209. 

[0039] Fig. 3 is an example of a non-contact identifi- 
cation token. In Fig. 3 a keychain transponder 301 in- 
teracts with a computer system 309. The keychain 
transponder 301 is moved across an area where a radio 
frequency (RF) unit 303 activates the keychain trans- 
ponder 301 . The keychain transponder then provides an 
input to the RF unit 303 identifying the user to the com- 
puter system 309. The user may then Interact with the 
system through a keypad 307 and a CRT 305. This type 
of system is similar to that used by the Mobil Oil Com- 
pany in its Speed Pass application used to purchase 
gasoline. This type of cryptographic module system 
does away with some of the obvious avenues for unau- 
thorized access present in Fig. 1 and Fig. 2. For exam- 
ple, the RF unit 303 used to activate the keychain trans- 
ponder 301 can be hidden from view by a cover over the 
computer system 309. With a cover concealing the com- 
puter system there is then no obvious input to the sys- 
tem such as the connector 207 exhibited in Fig. 2 or the 
electronic data link 1 1 1 illustrated in Fig. 1 . The system, 
however, emits radio waves from the transponder 303 
which is then picked up by the keychain transponder 3 01 
which then generates a radio frequency response signal 
identifying the user. Although the inputs to the computer 
system 309 are not obvious, the RF link between the 
keychain transponder and the computer system is still 
subject to electronic eavesdropping by receiving the RF 
signals from the RF unit 303 and the keychain trans- 
ponder 301. 

[0040] Fig. 4 is a block diagram of a non-wire contact 
Cryptographic Load Interface (CFI). The non-wire con- 
tact implementation replaces a conventional I/O port de- 
sign comprising wire contact interfaces. This CFI em- 
bodiment illustrates a means for securely and conven- 
iently loading cryptographic information into modules. 
The cryptographic information that is loaded into the 
cryptographic module 417 comprises information for 
configuring the module for operation. 
[0041] The cryptographic information that is loaded 
into the cryptographic module 417 may comprise a va- 
riety of different types of data. It may, for example, com- 
prise algorithms for decoding information from a host 
system. It may also include authorization codes, initial- 
ization variables, encryption keys, authorization data, 
user identity data or any other data which is necessary 
to allow the cryptographic module 417 to perform the 
cryptographicfunction intended. The cryptographic data 
should be distinguished from the host data. Host data is 
data supplied to the cryptographic module in order for 
the cryptographic module to perform some cryptograph- 
ic function, for example, decoding, on. Host data may 
be coupled to the cryptographic module 417 in an en- 



crypted form and then returned to the host system in an 
unencrypted form once the cryptographic module 417 
has been activated. 

[0042] The term Cryptographic Load Interface (CFI) 
is a general term that describes a receive only interface 
employed for the purpose of inputting cryptographic 
and/or non-cryptographic information into cryptographic 
modules. Such non-wire contacts can be implemented 
using various designs. For example magnetic coupling, 
inductive coupling, acoustic coupling, optical coupling 
in particular infrared, and radio frequency coupling are 
possible. In addition to the non-wire coupling CFI an em- 
bodiment of the invention may include the implementa- 
tion of a one-way Cryptographic Load Protocol (CLP). 
A CLP provides a secure implementation for a CFI port, 
[0043] With respect to Fig. 4, block 401 represents a 
non-wire contact input such as an RF induction, optical 
infrared (IR) acoustic, or magnetic coupling. As an ex- 
ample, a magnetic sensor or an integrated Hall effect 
circuit can be employed as a Cryptographic Load Inter- 
face (CFI). The magnetic sensor or Hall effect interface, 
in addition to being electronically more secure by pro- 
viding a data coupling point that may be hidden from 
view, is significantly more immune to environmental 
contaminants and suitable for use under severe condi- 
tions. It can be completely contained within the case 
housing the system without exposure to the surrounding 
environment. By coupling the receivers with an amplifier 
405 for amplifying the received signal, feedback linear- 
ization 407 for removing non-linearity in the input signal, 
temperature compensation 409 for compensating for 
temperature variation in components, and voltage reg- 
ulation 41 1 to compensate for varying power supply volt- 
ages, the design can be tuned for selectivity and sensi- 
tivity. Additionally visible exposure of the CFI can be 
avoided. Because the CFI can be operated using a non- 
contact interface, for example, a magnetic field no phys- 
ical connector is required, allowing complete conceal- 
ment of the CFI from view. In addition, problems such 
as interference and cross-talk, which is exhibited by 
electronic lines, such as those illustrated in Fig. 1-111 
and in Fig. 2-203, can be minimized. 
[0044] Induction methods may alternatively be used 
to couple data into a cryptographic module 417. After 
the input from one or more non-contact sensors has 
been conditioned through the use of conditioning mod- 
ules such as 405, 407, 409 and 411 the input may be 
converted by an analog to logic converter 41 3 into a suit- 
able level signal 41 5 to be coupled into the cryptograph- 
ic module 417. 

[0045] Acoustic coupling methods, particularly high 
frequency coupling techniques (preferably, frequencies 
greater than the normal human hearing capability), can 
be employed in non-wire contact inputs. Miniature pie- 
zoelectric high frequency sensors and microphones 
can be used as receiving elements and can provide a 
unique and non-obvious concealed CFI port. 
[0046] Optical methods, in particular infrared technol- 
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ogies, similar to methods in common use today for re- 
mote control of many entertainment and other electronic 
devices, can also be used to provide a non-wire contact 
input port. Infrared (IR) interfaces can remain complete- 
ly concealed by using materials, which are transparent 
to IR and opaque to visible light, effectively concealing 
them when viewed by the human eye. The IR port can 
offer a convenient method of field programming a mod- 
ule without disassembly or removal from a host system. 
[0047] Radio frequency methods of coupling can also 
be employed in CFI non-wire contact applications. Al- 
though radio frequency does have drawbacks associat- 
ed with the implementation of an antennae (i.e., a radio 
frequency interface could possibly radiate protective 
cryptographic information even if only in a receiver func- 
tion), radio frequency interfaces can also be employed 
as a non-wire connection. Reduced power, added 
shielding and coding techniques such as spread spec- 
trum, can be employed to reduce possible signal radia- 
tion and opportunity for electronic eavesdropping. 
[0048] A unkiirectional (receive input only) crypto- 
graphic load protocol (CLP) allows the ability to set up 
a cryptographic module and parameters for loading op- 
erations but can minimize the possibility of sensitive da- 
ta from leaking from the port. Because the receiver 403 
is a receive-only mechanism the chance of eavesdrop- 
ping via electronic radiation is diminished. 
[0049] Fig. 5 is a block diagram of a cryptography 
module, which may be used with a Cryptographic Load 
Interface (CFI). In Fig. 5 a cryptographic module 501 re- 
ceives data from data transfer equipment 511 which is 
transmitted by a sending unit 513 using a non contact 
Cryptographic Load Interface 509. The Cryptographic 
Load Interface 509 may comprise a variety of different 
signal types such as, but not limited to, radio signals, 
induction signals, magnetic coupling signals, optical sig- 
nals, acoustic signals, and Infrared signals. Data can be 
carried by these signals through a variety of means well 
known in the art. The data sent by the sending unit 513 
using the cryptographic load interface 509 is crypto- 
graphic data. Cryptographic type data is data that con- 
trols the functioning of the cryptographic module 501 . 
Cryptographic data may comprise a variety of different 
types of data, Cryptographic data including, but not lim- 
ited to, algorithms for decoding data from a host system 
503. Cryptographic data may also include software keys 
for decrypting data, identification data for identifying au- 
thorized transactions and users of the system, various 
protocols for interacting with data from a host system 
503, software updates or reauthorizations of the crypto- 
graphic module 501, or a variety of other types of data 
which enable the cryptographic module 501 to accom- 
plish its cryptographic function. The cryptographic load 
interface 509 is a uni-directional interface transferring 
data from a sending unit to the cryptographic module 
only. In contrast, cryptographic services may be provid- 
ed through a host system 503 via a host interface 505. 
A host interface 505 may be a bidirectional interface link- 



ing a host system 503 to the cryptographic module 501 . 
Hie cryptographic module may provide a variety of cryp- 
tographic services to a host system 503. By way of ex- 
ample, a host system 503 may send encrypted data via 

5 a host interface 505 to a cryptographic module 501 . The 
data may then be decoded in the cryptographic module 
501 according to algorithms or protocols received by the 
cryptographic module from the cryptographic load inter- 
face 509. The cryptographic module may then decode 

10 the encrypted data from the host system 503 and return 
unencrypted data across the host interface 505 from the 
cryptographic module 501 to the host system 503. A 
host system 503 may also send across the host inter- 
face 505 data to the cryptographic module 501 which is 

*5 then analyzed according to algorithms provided to the 
cryptographic module. The cryptographic module 501 
can then return data to the host system 503 which is the 
result of applying algorithms to the data from the host 
system 503. For example, the host system may be pro- 

20 viding data regarding a user to the cryptographic module 
501 . The cryptographic module may then examine the 
data according to algorithms received from the crypto- 
graphic load interface 509 and then return a simple au- 
thorization or no authorization for the particular transac- 
ts tion sent to it from the host system. Those skilled in the 
art will recognize that other suitable types of services 
provided by a cryptographic module 501 to a host sys- 
tem 503 and that the previous examples have been pro- 
vided for illustration only, in other words, the crypto- 

30 graphic module will perform operations on data such as 
those from a host system 503 and may return data to 
the host system 503 across a bidirectional host interface 
505. The same cryptographic module may receive cryp- 
tographic functioning information, such as data param- 

35 eters and algorithms from a uni-directional cryptograph- 
ic load interface 509. By separating the uni-directional 
cryptographic load interface 509 which couples data Into 
the cryptographic module from the bidirectional host in- 
terface 505 across which client services is provided to 

40 the host system 503 by the cryptographic module 501 , 
the possibility of unauthorized access to module func- 
tioning parameters from the cryptographic module 501 
is greatly reduced. 

[0050] In other embodiments the crypto load interface 
45 509 may provide certain types of acknowledge signals 
to the sending unit 5 13. In such embodiments no crypto- 
information would be transmitted. The acknowledge sig- 
nals would confirm that crypto-information was received 
and loaded correctly or may provide a command indi- 
so eating that the information should be resent. The ac- 
knowledge or control signal might also be provided by 
a separate non-wire contact interface which could be lo- 
cated elsewhere on the unit. 

[0051] The Cryptographic Load Interface 509 may 
55 comprise such inputs as RF induction, optical, IR, 
acoustic or magnetic radiations into a cryptographic 
module input 507. When cryptographic data is loaded 
into the cryptographic module 501 the host system 503 
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may then access the cryptographic module 501 through 
a host interface 505. After the data transfer from the 
Cryptographic Load Interface 509 has enabledthe cryp- 
tographic module 501 , the host system can then transfer 
host data via the host interface 505. The host interface 
505 which may be, for example, a simple wire connec- 
tion, in order to access the cryptographic functions of 
the cryptographic module 501 . In other words, once the 
cryptographic module 501 has been loaded with the 
proper enabling data from the Cryptographic Load In- 
terface 509 it can serve as a slave module to process 
data from the host system 503. By separating the cryp- 
tographic module input 507 from the bi-directional host 
interface 505, the likelihood that cryptographic data can 
be read from the input only cryptographic module input 
is greatly diminished over the case where the crypto- 
graphic module input 507 were used to output as well 
as input data. In the input only cryptographic module the 
ability to output data is not an inherent characteristic of 
input only ports. 

[0052] Fig. 6 is a block diagram of a cryptography 
module containing both a CFI interface and a Crypto- 
graphic Load Protocol (CLP). The CLP allows the CPU 
609 to perform cryptographic decoding functions only 
when loaded with the proper protocol, which has been 
received by the CFI. In Fig. 6 cryptographic input data 
603 is provided to the cryptographic module 601, 
through a non-wire contact sensor 605 which may be of 
the receive only type. The sensor then provides data to 
a protocol processor 607, which then provides resulting 
data to the CPU 609, after verifying the protocol of the 
data within the protocol processor 607. Data then can 
be fed through a standard I/O connector 613, through 
an I/O port 611 to a CPU 609. The CPU 609 can then 
use the data provided to it by the protocol processor to 
decrypt data that it receives from the data I/O connector 
613 through the data I/O port 611 . 
[0053] In other embodiments acknowledge signals 
may be provided by the non-wire contact sensor 605, or 
by another non-contact device, which can be located 
separate from non-wire contact sensor 605. 
[0054] Such a scheme, as depicted in Fig. 6. has sev- 
eral advantages. A first advantage is that the crypto- 
graphic input data 603 may be coupled in a one-way 
direction into the cryptographic module 601 and into the 
non-wire contact sensor 605. A one-way coupling of da- 
ta minimizes potential radiation from the cryptographic 
module which may be electronically eavesdropped. In 
addition, because there is no connection between the 
cryptographic input data and the data to be decoded, 
decoded data cannot be accessed through the crypto- 
graphic input. 

[0055] Fig. 7 is a graphic illustration of a cryptographic 
module containing two non-contact CFI inputs, which 
may be used complimentarily for enhanced security. In 
Fig. 7 a cryptographic load module 71 7 contains two out- 
put transducers 719 and 721 . Output transducer 719 is 
an acoustic output transducer and output transducer 



721 is a radio frequency output transducer. An acoustic 
sensor 703 within the cryptographic module 717 re- 
ceives the output of acoustic transducer 719. A radio 
frequency input sensor 707 within the cryptographic 

5 module 71 7 receives the output of the radio frequency 
transducer 721 . The output of the radio frequency sen- 
sor 707 is coupled into a radio frequency input module 
709 and from there into a CPU 71 1 . In a like manner the 
acoustic sensor 703 couples its output into acoustic in- 
fo put module 705 and further couples the output from the 
acoustic input module 705 into the CPU 711. The CPU 
711 may operate with a protocol, which is dependent on 
the inputs from both the acoustic sensor and the radio 
frequency sensor thereby heightening the security of the 

is module. The cryptographic module 717 is similar to a 
cryptographic module 501 in that information from the 
Cryptographic Load Interface must be transferred into 
the CPU in order to enable the decoding action of the 
cryptographic module 717. In other words, CPU 711 

20 must have information from both the radio frequency 
sensor 707 and the acoustic sensor 703 in order to de- 
code the data which is coupled into it through I/O con- 
nector 715 into the CPU data port 713. The CPU 711 
may depend, for its ability to decode input through the 

25 i/o connector 715, on both inputs from the radio fre- 
quency sensor and acoustic sensor simultaneously. Al- 
ternately, the CPU 71 1 may depend on both inputs which 
must contain a certain sequencing of data from the radio 
frequency sensor 707 and the acoustic sensor 703. For 

30 example, the CPU may be programmed so that it may 
not decode data unless it receives a first decoding key 
from the radio frequency sensor 707, a second decoding 
key from the acoustic sensor 703, followed by a third 
key from the radio frequency sensor 707 etc. In this way, 

35 sequencing between the sensors may be used to pro- 
vide greater security within the cryptographic module 
717. 

[0056] By using more than one sensor protocols 
which require the reception of real time information si- 

40 multaneously. In addition, the information may be differ- 
ential information in which the data stream from a first 
device may be combined in some fashion with the data 
stream of one or more further devices in order to create 
the required cryptographic data. 

« [0057] The embodiment of Fig. 7 is applicable with dif- 
ferent sensors and sensor combinations shown in the 
drawing, including, but not limited to, optical, magnetic, 
acoustic, and even multiple sensors of the same type. 
Example embodiments of sensor combinations include 

50 ir and magnetic combination or acoustic and magnetic 
combination. However, further embodiments may em- 
ploy other suitable combinations of two or more sensors 
or sensor types. 

[0058] Multiple sensor implementations can enhance 
55 physical security by defining a restricted area, specific 
orientation and location of the cryptographic module 
sensor inputs, thereby restricting the communication of 
cryptographic data. Fig. 8 is a graphical example em- 
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bodiment of a cryptographic module with a specific ori- 
entation and location of cryptographic module inputs to 
enhance security. 

[0059] Fig. 11 is a graphical illustration of the use of 
specific an embodiment of the invention in which orien- 
tation and shielding of sensors are use to heighten se- 
curity. In Fig. 11 a first transmitter 1109 transmits to a 
first sensor 1103. A first transmitter 1109 must be in a 
specific orientation because a first sensor 11 03 is shield- 
ed by shade number one 1101 , thus restricting the ori- 
entation of a first transmitter 1109. If a first transmitter 
1109 deviates too far from a straight-line orientation 
1113, then shade number one 1101 will prevent a first 
sensor 1103 from receiving transmissions from a first 
transmitter 1109. In the same manner, a second sensor 
1105 receives transmissions from a second transmitter 
1111 along a straight line path 1115. If a second trans- 
mitter 1111 deviates too far from the straight line path 
1115 then shade number two 1107 will block the trans- 
missions from a second transmitter 1111 and a second 
sensor 1 1 05 will not receive the transmission from a sec- 
ond transmitter 1111. Only by placing a first transmitter 
and a second transmitter in the particular orientations 
shown can the sensors receive the data from the trans- 
mitters. An authorized user of the system would orient 
a first transmitter 1109 and a second transmitter 1111 
with a particular orientation with respect to the system 
cover 1117. The transmitters, so aligned, would then be 
able to couple their transmissions into their respective 
sensors without being shielded by the respective 
shades. 

[0060] By defining a restricted area and specific ori- 
entation the cryptographic input sensors, the transmit- 
ters that communicate with those inputs may be re- 
quired to meet the restriction requirements and the spe- 
cific orientation requirements of the receiving sensors. 
This physical characteristic and requirement of requiring 
a specific input location and orientation, in addition to 
the primary non-wire connection not being immediately 
obvious during an initial observation of the device, fur- 
ther enhances the security of the device. 
[0061] Fig. 8 is a graphic illustration of a cryptographic 
module having a non-contact (CFI) input as well as a 
"secret" session parameter. The "secret" session pa- 
rameter may comprise a decryption key that is to be 
used by the cryptographic module to provide crypto- 
graphic services to a host system. Secret session pa- 
rameters can also be initialization parameters, supervi- 
sor keys, certificates, as well as other types of parame- 
ters. In Fig. 8 cryptographic fill input CFI data 801 is pro- 
vided to an input sensor 803 within the cryptographic 
module 813. The sensed cryptographic fill input data is 
provided through the input sensor 803 into the input 
module 805. The input module then provides crypto- 
graphic data to the CPU 807. The cryptographic fill input 
data 801 may require a "secret" session parameter 809 
that is to be used in decoding the data coupled into the 
module through the data input output port 811 . The se- 



cret session parameter 809 can be provided to the CPU 
807 and used with particular data supplied through the 
data input output port 811. In addition, secret session 
parameters can be provided via the data input output 
s port 811 . The cryptographic fill input may command that 
one "secret" session parameter be used. That 'secret" 
session parameter 809 may have the ability to decode 
only one type of data provided by the data input output 
port 811 . The cryptographic fill input data 801 may also 
10 command other secret session parameters 809 to be 
loaded into the CPU for use with other data streams 
which are provided to the data input output port 811 . In 
this way, the cryptographic fill input must have knowl- 
edge of which "secret" session parameter must be cho- 
15 sen to decode the data provided to the cryptographic 
module. Several different data streams and several dif- 
ferent "secret" session parameters 809 can be used to- 
gether thereby enhancing security of the cryptographic 
module 813. 

[0062] Fig. 9 is a graphic example of a non-wire con- 
tact embodiment of the invention, which employs a data 
packet input scheme. In Fig. 9 a cryptographic module 
923 is designed to accept data packets 903 from a send- 
er module 901 . The sender module 901 sends data 
packets 903 to a receiver 905 within the cryptographic 
module 923. The receiver 905 further provides the data 
packets to an input module 907. The input module con- 
ditions and converts the input from the receiver 905 to 
readable form by the CPU 911 . Within the data packets 
903 can be specifications used with the cryptographic 
function of the module 923. For example, within the data 
packets a specific encryption type file 909 may be de- 
fined. The CPU 91 1 then can retrieve an encryption type 
file 909 as commanded by the data in the data packets 
903. Also, the data packets 903 may specify a digital 
signature file. The data packets 903 may need to have 
the correct data signature file to activate the CPU 911 
and its decoding function. The data packets 903 can al- 
so specify other types of cryptographic parameters 915 
to be input into the CPU. The data packets 903 may con- 
tain pointers to cryptographic parameter files 915 or may 
contain the actual cryptographic parameters. In addi- 
tion, data from the data packets 903 may contain private 
keys that are then used within the CPU in concert with 
public keys 91 7, which have been coupled from the out- 
side environment into the cryptographic model 923. By 
using these various parameters, the CPU may be com- 
manded to use various schemes of decryption on the 
input data and may then provide decrypted data to the 
decrypted data port 921 . 

[0063] Fig. 10 is a table illustrating an example em- 
bodiment of a data packetization protocol as may be 
used with non-wire contact embodiments of the inven- 
tion such as that illustrated in Fig. 9. In Fig. 10 the en- 
cryption packet table specifies the composition of the 
data packets such as the data packets 903 illustrated in 
Fig. 9. The illustrative data packets may consist of three 
different portions: a packet header 1 001 , a packet dat- 
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agram 1003, which may be encrypted, and a packet 
trailer 1005. 

[0064] The packet header 1001 may include such in- 
formation as the encryption type to be used, the signa- 
ture type to be used inside the module, and may contain 
an authentication such as a digital session parameter. 
The packet diagram 1003 may further contain crypto- 
graphic parameters, cryptographic key pairs, and mod- 
ule initialization parameters. The packet trailer may 
comprise a total packet digital signature, a forward error 
correcting code or a Cyclic Redundancy Code (CRC) 
code thereby enhancing the security of the data packets 
themselves. 

[0065] By encrypting the data within a packet, various 
schemes may be used to further enhance data security. 
For example, a packet header may specify an encryp- 
tion type that is to be used with that particular packet. A 
second encryption packet may specify a different en- 
cryption type for the packet thereby necessitating a dif- 
ferent type of decryption for that packet, in other words, 
each data packet can support its own protocol session 
parameters, encryption types, error correcting code, 
and CRC codes. In addition, one packet may contain 
error-correcting codes for successive packets. In this 
way, data packets may be mixed and matched thereby 
increasing the difficulty in decoding a data package 
stream. 

[0066] The foregoing description of the exemplary 
embodiment of the invention has been presented for the 
purposes of illustration and description. It is not intended 
to be exhaustive or to limit the invention to the precise 
form disclosed. Those skilled in the art will recognize 
that the disclosed technology is applicable to a variety 
of applications differing from those illustratively dis- 
closed. Many modifications and variations are possible 
in light of the above teaching. It is intended that the 
scope of the invention be limited not with this detailed 
description, but rather by the claims appended hereto. 

Claims 

1. An apparatus for receiving cryptographic data, 
processing cryptographic data and for providing 
cryptographic services to a host, the apparatus 
comprising: 

a non-contact cryptographic data receiver for 
receiving cryptographic data through a non- 
contact interface; 

a central processing unit (CPU) having memory 
and programming, the CPU receiving crypto- 
graphic data from the cryptographic data re- 
ceiver and processing said data; and 
a host interface for accepting processed cryp- 
tographic data and providing said data to the 
host. 



2. An apparatus as in claim 1 wherein in the non-con- 
tract cryptographic data receiver further comprises 
a non-contact receiver, the receiver chosen from 
the group consisting of: 

s a magnetic receiver, a radio frequency receiv- 

er, an optical receiver, an infrared receiver, an ultra- 
sonic receiver, and an induction receiver. 

3. An apparatus as in claim 1 , the non-contact crypto - 
10 graphic data receiver further comprising: 

a non-contact sensor; and 
a conditioning circuit. 

*5 4. An apparatus as in claim 3 wherein the conditioning 
circuit is chosen from the group of conditioning cir- 
cuits consisting of: 

an amplifier circuit, a feedback linearization 
circuit, a temperature compensation circuit and a 

20 voltage regulation circuit. 

5. An apparatus as in claim 1 wherein the non-contact 
cryptographic data receiver is a receive only inter- 
face. 

25 

6. An apparatus as in claim 1 wherein the CPU pro- 
gramming further comprises a program wherein the 
CPU will only process cryptographic data if the pro- 
gram receives predetermined cryptographic data. 

30 

7. An apparatus as in claim 1 wherein the non-contact 
cryptographic data receiver is hidden from view. 

8. An apparatus as in claim 1 wherein the non-contact 
35 receiver is directional, capable of receiving only a 

directionally restricted input. 

9. An apparatus as in claim 8 wherein the directionally 
restricted input is accomplished by an orientation of 

40 the non-contract cryptographic data receiving sen- 
sor. 

10. An apparatus as in claim 8 wherein the directionally 
restricted input of the non-contract cryptographic 

45 data receiving sensor is accomplished by shielding 
the non-contact sensor. 

11. An apparatus for receiving cryptographic data, 
processing cryptographic data and for providing 

so cryptographic services to a host, the apparatus 
comprising: 

a plurality of non-contact cryptographic data re- 
ceivers for receiving cryptographic data 
55 through a plurality of non-contact interfaces; 

a central processing unit (CPU) having memory 
and programming, the CPU receiving crypto- 
graphic data from the plurality of cryptographic 
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data receivers and processing said data; and 
a host interface for accepting processed cryp- 
tographic data and providing said data to the 
host. 

5 

12. An apparatus as in claim 11 wherein the plurality of 
non-contact cryptographic data receivers further 
comprise non-contact receivers chosen from the 
group consisting of: 

magnetic receivers, radio frequency receiv- to 
ers, optical receivers, infrared receivers, ultrasonic 
receivers and induction receivers. 



using the cryptographic data to provide crypto- 
graphic services to the host system. 

22. A process as in claim 21 wherein the processing of 
the cryptographic module is dependent on the re- 
ceiving of cryptographic data in a preset sequence. 

23. A process as in claim 21 wherein the receiving of 
cryptographic data in a preset sequence comprises 
receiving cryptographic data from a plurality of spa- 
tially separated non contact cryptographic receiv- 
ers. 



13. An apparatus as in claim 11 , the non-contact cryp- 
tographic data receivers further comprising: 

non-contract sensors; and 
conditioning circuits. 

14. An apparatus as in claim 13 wherein the condition- 
ing circuits are chosen from the group consisting of: 

amplifying circuits, feedback linearization cir- 
cuits, temperature compensation circuits and volt- 
age regulation circuits. 

15. An apparatus as in claim 11 wherein said plurality 
of non-contact cryptographic data receivers are re- 
ceive-only interfaces. 



24. A process as in claim 21 wherein the receiving of 
is cryptographic data from a plurality of spatially sep- 
arated cryptographic receivers further comprises 
the receiving of cryptographic data coupled in a pre- 
set orientation to the cryptographic receivers in or- 
der to property receive the cryptographic data. 

20 



25 



16. An apparatus as in claim 1 1 wherein the CPU pro- 30 
gramming further comprises a program wherein the 
CPU only processes cryptographic data if the pro- 
gram receives predetermined data from the plurality 

of cryptographic data receivers. 

35 

17. An apparatus as in claim 11 wherein the non-con- 
tact receivers are hidden from view. 

18. An apparatus as in claim 11 wherein the plurality of 
non-contact receivers can receive only restricted di- *o 
rectional input. 

19. An apparatus as in claim 18 wherein the reception 
of directional input is accomplished by the orienta- 
tion of the sensors. 45 

20. An apparatus as in claim 1 8 wherein the reception 
of directional input is accomplished by shielding the 
sensors. 

50 

21. A process for the communication of cryptographic 
data, processing cryptographic data and providing 
cryptographic services to a host, the process com- 
prising: 

55 

receiving cryptographic data by a plurality of 
cryptographic load receivers; 
processing the data using a CPU; and 
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(54) Non-wire contact device application for cryptographic module interfaces 



(57) Conventional approaches to cryptographic 
modules interface design have achieved only limited 
physical security. Embodiments of the present invention 
encompass non-contact interfaces to cryptographic 
modules. Non-contact inputs comprise such inputs as 
contain magnetic coupling, RF coupling, infrared cou- 
pling, optical coupling and acoustical coupling to load 
cryptographic data into cryptographic modules. By us- 
ing non-contact methods of coupling, the physical inputs 
to the module can be hidden as no external connectors 
to input cryptographic data are required. In addition, 
several non-contact inputs can be disposed within a 
cryptographic module. These non-contact inputs may 



have orientations and spacings, which require the spe- 
cific placement of transmitting units, thereby increasing 
the security of the module. In addition, by having several 
inputs to the cryptographic module, instead of merely 
one, the cryptographic function may be made to be de- 
pendent on a sequencing of data between the inputs. In 
other words, the cryptographic module may require si- 
multaneous inputs on two or more sensors. Crypto- 
graphic module may also require a sequence of data 
inputs. By hiding cryptographic inputs through non-con- 
tact means, requiring various non-contact input orienta- 
tions and data sequencing and by using different sen- 
sors, security within cryptographic modules can be 
greatly enhanced. 
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